| Page(s) : [1] | Result(s) : 5 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2017-04-29 | CVE-2017-7981 | cve | Tuleap before 9.7 allows command injection via the PhpWiki 1.3.10 SyntaxHighlighter plugin. This occurs in the Project Wiki component because the proc_open PHP function is used ... |
| 7.5 | 2017-04-29 | CVE-2017-7957 | cve | XStream through 1.4.9, when a certain denyTypes workaround is not used, mishandles attempts to create an instance of the primitive type 'void' during unmarshalling, le... |
| 8.8 | 2017-04-29 | CVE-2017-8114 | cve | Roundcube Webmail allows arbitrary password resets by authenticated users. This affects versions before 1.0.11, 1.1.x before 1.1.9, and 1.2.x before 1.2.5. The problem is caused... |
| 8.8 | 2017-04-29 | CVE-2017-8325 | cve | The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-base... |
| 8.8 | 2017-04-29 | CVE-2017-8326 | cve | libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a deni... |
| Page(s) : [1] | Result(s) : 5 |
